Close Open Privacy Scan
App Privacy Score
Coverage too low to score · 81 finding(s)
bar_chart Score Breakdown
list Scan Summary
swap_horiz Application data flows
Not enough of this repository was analyzed to look for application data flows. Absence of findings here is not evidence of a clean result.
</> First-Party Code
first-party (rust): rust/src/bench
rust first-partyexpand_more 26 low-confidence finding(s)
API_KEY.get_or_init(|| std::env::var("OPENAI_API_KEY").ok())
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
if let Ok(api_key) = std::env::var("OPENAI_API_KEY") {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
if let Ok(api_key) = std::env::var("OPENAI_API_KEY") {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
if let Ok(api_key) = std::env::var("OPENAI_API_KEY") {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let api_key = Arc::new(std::env::var("OPENAI_API_KEY").ok());
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let _ = std::fs::write(dir.join(cache_key), "");
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let api_key = std::env::var("OPENAI_API_KEY").ok();
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = std::fs::read_to_string(path)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = std::fs::read_to_string(path)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::fs::write(&path, content).unwrap();
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
if let Ok(token) = std::env::var("HF_TOKEN") {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::fs::write(&cache_path, &json_str)?;
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = std::fs::read_to_string(dataset_path).map_err(|e| {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::fs::write(&path, serde_json::to_string(data).unwrap()).unwrap();
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = std::fs::read_to_string(dataset_path).map_err(|e| {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = std::fs::read_to_string(dataset_path).map_err(|e| {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
Some(path) => std::fs::read_to_string(path)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::fs::write(&cache_path, &json_str)?;
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = std::fs::read_to_string(dataset_path).map_err(|e| {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
if let Ok(api_key) = std::env::var("OPENAI_API_KEY") {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::fs::write(file_path, content)?;
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = std::fs::read_to_string(model_path)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = std::fs::read_to_string(model_path)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = std::fs::read_to_string(config_path).ok()?;
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::fs::read_to_string(p)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let source = std::fs::read_to_string(&py_path).ok()?;
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
first-party (rust): rust/src/chat
rust first-partyexpand_more 17 low-confidence finding(s)
std::fs::write(path, content).unwrap();
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let text = fs::read_to_string(path)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let text = fs::read_to_string(path)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let text = fs::read_to_string(path)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::fs::write(
&config_path,
serde_json::json!({
"model_type": "qwen3_vl",
"image_token_id": QWEN3_IMAGE_PAD_ID,
"video_token_id": QWEN3_VIDEO_PAD_ID,
})
.to_string(),
)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::fs::write(&video_config_path, r#"{"size":{"shortest_edge":128}}"#).unwrap();
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::fs::write(
&processor_config_path,
r#"{"video_processor":{"size":{"shortest_edge":128}}}"#,
)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::fs::write(&video_config_path, r#"{"size""#).unwrap();
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::env::var(SYSTEM_START_DATE_ENV)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::env::var(HARMONY_SYSTEM_INSTRUCTIONS_ENV)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::read_to_string(vllm_examples_dir().join(relative_path))
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = fs::read_to_string(template_path).map_err(TemplateError::ReadTemplateFile)?;
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(&path, "{{ messages }}").unwrap();
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(&path, "{{ messages }}").unwrap();
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(&path, "\"{{ messages }}\"").unwrap();
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(&path, r#"{"chat_template":"{{ messages }}"}"#).unwrap();
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let fixture = fs::read_to_string(path).unwrap();
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
first-party (rust): rust/src/cmd
rust first-partyexpand_more 6 low-confidence finding(s)
&& let Ok(api_key) = std::env::var("VLLM_API_KEY")
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let preferred_base_path = std::env::var_os("VLLM_RPC_BASE_PATH")
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
tracing::warn!("argument '{arg}' currently has no effect in Rust frontend, ignoring");
A telemetry/analytics SDK is used; event data is sent to a third-party collector.
Fix: Ensure user consent and a lawful basis; strip PII from event payloads.
env::var("VLLM_LOGGING_LEVEL").ok().as_deref(),
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
env::var("RUST_LOG").ok().as_deref(),
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
if env::var_os(TOKIO_WORKER_THREADS_ENV).is_some() {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
first-party (rust): rust/src/engine-core-client
rust first-partyexpand_more 1 low-confidence finding(s)
std::env::var(ZMQ_WORKER_THREADS_ENV)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
first-party (rust): rust/src/server
rust first-partyexpand_more 8 low-confidence finding(s)
let manifest_dir = std::env::var("CARGO_MANIFEST_DIR").unwrap();
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::env::var("VLLM_SERVER_DEV_MODE")
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::env::var("VLLM_ALLOW_RUNTIME_LORA_UPDATING")
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let prefixes = std::env::var_os(RUNTIME_LORA_ALLOWED_PATH_PREFIXES_ENV)?;
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(
&config_path,
r#"{"model_type":"qwen2_vl","image_token_id":151655}"#,
)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
if let Some(value) = std::env::var_os(REQUEST_WORKER_THREADS_ENV) {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::env::vars().filter(|(key, _)| is_public_vllm_env_key(key)).collect()
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
std::fs::write(dir.path().join(name), contents).expect("write fixture");
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
first-party (rust): rust/src/text
rust first-partyexpand_more 5 low-confidence finding(s)
let content = fs::read_to_string(path).map_err(|error| {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
if let Ok(token) = std::env::var(HF_TOKEN_ENV)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(dir.path().join("tokenizer.json"), "{}").expect("write tokenizer");
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(
dir.path().join("tokenizer_config.json"),
r#"{"tokenizer_class":"TokenizersBackend"}"#,
)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(dir.path().join("config.json"), "{}").expect("write config");
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
first-party (rust): rust/src/tokenizer
rust first-partyexpand_more 18 low-confidence finding(s)
std::fs::write(
dir.path().join("tokenizer_config.json"),
r#"{
"added_tokens_decoder": {
"9": {
"content": "<|image_pad|>",
"special": true,
"normalized": false
}
}
}"#,
)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let tokenizer_json = fs::read_to_string(path)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let text = fs::read_to_string(path)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
if std::env::var_os(DISABLE_RIPTOKEN_ENV).is_some() {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = std::fs::read_to_string(path).map_err(|error| {
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = std::fs::read_to_string(&config_path).ok()?;
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
let content = std::fs::read_to_string(&config_path).ok()?;
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(&path, content).expect("write tiktoken file");
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(&path, content).expect("write sparse-rank tiktoken file");
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(dir.path().join("config.json"), r#"{"vocab_size": 280}"#)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(dir.path().join("config.json"), r#"{"vocab_size": 1002}"#)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(
dir.path().join("tokenizer_config.json"),
r#"{
"added_tokens_decoder": {
"257": { "content": "<|im_end|>", "special": true },
"258": { "content": "<|tool_call_begin|>", "special": false }
}
}"#,
)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(dir.path().join("config.json"), r#"{"vocab_size": 260}"#)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(
dir.path().join("config.json"),
r#"{"text_config": {"vocab_size": 270}}"#,
)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(
dir.path().join("tokenizer_config.json"),
r#"{
"added_tokens_decoder": {
"257": { "content": "<think>", "special": false },
"258": { "content": "</think>", "special": false }
}
}"#,
)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(dir.path().join("config.json"), r#"{"vocab_size": 259}"#)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(
dir.path().join("tokenizer_config.json"),
r#"{
"added_tokens_decoder": {
"257": { "content": "<think>", "special": false }
}
}"#,
)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
fs::write(dir.path().join("config.json"), r#"{"vocab_size": 258}"#)
Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.
Fix: Usually benign; confirm any secret read here is not later sent externally.
Skipped dependencies
Production
- anyhow prod — no version pinned
- base64 prod — no version pinned
- bytes prod — no version pinned
- chrono prod — no version pinned
- clap prod — no version pinned
- dirs prod — no version pinned
- futures prod — no version pinned
- hf-hub prod — no version pinned
- image prod — no version pinned
- indicatif prod — no version pinned
- mimalloc prod — no version pinned
- rand prod — no version pinned
- rand_distr prod — no version pinned
- rayon prod — no version pinned
- reqwest prod — no version pinned
- rlimit prod — no version pinned
- rustc-hash prod — no version pinned
- serde prod — no version pinned
- serde_json prod — no version pinned
- thiserror prod — no version pinned
- tiktoken-rs prod — no version pinned
- tokenizers prod — no version pinned
- tokio prod — no version pinned
- tokio-stream prod — no version pinned
- url prod — no version pinned
- uuid prod — no version pinned
- asynk-strim-attr prod — no version pinned
- easy-ext prod — no version pinned
- half prod — no version pinned
- indexmap prod — no version pinned
- itertools prod — no version pinned
- llm-multimodal prod — no version pinned
- minijinja prod — no version pinned
- minijinja-contrib prod — no version pinned
- openai-harmony prod — no version pinned
- reqwest-0-13 prod — no version pinned
- serde-json-fmt prod — no version pinned
- serde_with prod — no version pinned
- strum prod — no version pinned
- subenum prod — no version pinned
- thiserror-ext prod — no version pinned
- time prod — no version pinned
- tracing prod — no version pinned
- trait-set prod — no version pinned
- vllm-engine-core-client prod — no version pinned
- vllm-llm prod — no version pinned
- vllm-parser prod — no version pinned
- vllm-text prod — no version pinned
- vllm-tokenizer prod — no version pinned
- xgrammar-structural-tag prod — no version pinned
- educe prod — no version pinned
- native-tls-vendored prod — no version pinned
- tokio-util prod — no version pinned
- vllm-chat prod — no version pinned
- vllm-managed-engine prod — no version pinned
- vllm-server prod — no version pinned
- arc-swap prod — no version pinned
- bytemuck prod — no version pinned
- byteorder prod — no version pinned
- enum-as-inner prod — no version pinned
- hex prod — no version pinned
- parking_lot prod — no version pinned
- rmpv prod — no version pinned
- serde_default prod — no version pinned
- serde_repr prod — no version pinned
- serde_tuple prod — no version pinned
- task-local prod — no version pinned
- vllm-metrics prod — no version pinned
- libc prod — no version pinned
- prometheus-client prod — no version pinned
- winnow prod — no version pinned
- pyo3 prod — no version pinned
- pythonize prod — no version pinned
- auto_enums prod — no version pinned
- axum prod — no version pinned
- http-body prod — no version pinned
- hyper prod — no version pinned
- hyper-util prod — no version pinned
- openssl prod — no version pinned
- prost prod — no version pinned
- prost-types prod — no version pinned
- sha2 prod — no version pinned
- socket2 prod — no version pinned
- subtle prod — no version pinned
- tls-listener prod — no version pinned
- tokio-openssl prod — no version pinned
- tonic prod — no version pinned
- tonic-prost prod — no version pinned
- tower prod — no version pinned
- tower-http prod — no version pinned
- tracing-futures prod — no version pinned
- validator prod — no version pinned
- fastokens prod — no version pinned
- riptoken prod — no version pinned
- tekken prod — no version pinned